cvedb.io
CVE-2025-67505
HIGH · CVSS 8.4
EPSS exploitation probability: 0%
Published 2025-12-10T23:15:48.667 · Last modified 2026-06-17T09:57:45.267

Summary

Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.

Affected products

okta — java_management_sdk

Does this affect you?

Add your gear to cvedb and we'll alert you only when okta ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.